Microsoft Sharepoint server vulnerability puts an estimated 10,000 organizations at risk

A major zero-day security vulnerability in Microsoft's widely used SharePoint server software has been exploited by hackers, causing chaos within businesses and government agencies, multiple outlets have reported. Microsoft announced that it had released a new security patch "to mitigate active attacks targeting on-premises [and not online] servers," but the breach has already effected universities, energy companies, federal and state agencies and telecommunications firms. 

The SharePoint flaw is a serious one, allowing hackers to access file systems and internal configurations or even execute code, to completely take over systems. The flaw could put more than 10,000 companies at risk, Cybersecurity company Censys told The Washington Post. "It's a dream for ransomeware operators, and a lot of attackers are going to be working this weekend as well." Google's Threat Intelligence Group added that the flaw allows "persistent, unauthenticated access that can bypass future patching." 

The US Cybersecurity and Infrastucture Security agency (CISA) said that any servers affected by the exploit should be disconnected from the internet until a full patch arrives. It added that the impact of the attacks is still being probed.  

The vulnerability was first spotted by Eye Security, which said the flaw allows hackers to access SharePoint servers and steal keys in order to impersonate users or services. "Because SharePoint often connects to core services like Outlook, Teams, and OneDrive, a breach can quickly lead to data theft, password harvesting, and lateral movement across the network," Eye Security wrote in a blog post

The FBI is aware of the attack and is working closely with government and private sector partners. It's not immediately clear which groups are behind the zero-day hacks. In any case, the attack is liable to put Microsoft under the microscope again. A 2023 breach of Exchange Online mailboxes led the White House's Cyber Safety Review Board to declare that Microsoft's security culture was "inadequate." 

This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/microsoft-sharepoint-server-vulnerability-puts-an-estimated-10000-organizations-at-risk-120006463.html?src=rss https://www.engadget.com/cybersecurity/microsoft-sharepoint-server-vulnerability-puts-an-estimated-10000-organizations-at-risk-120006463.html?src=rss
Created 3d | Jul 21, 2025, 2:20:52 PM


Login to add comment

Other posts in this group

Google DeepMind's Aeneas model can restore fragmented Latin text

At its best, AI is a tool, not an end result. It allows people to do their jobs better, rather than sending them or their colleagues

Jul 23, 2025, 9:50:16 PM | Engadget
FDA employees say the agency's Elsa generative AI hallucinates entire studies

Current and former members of the FDA told

Jul 23, 2025, 9:50:15 PM | Engadget
Sony is finally making it possible to pair a DualSense with more than one device

Sony is bringing a welcome quality-of-life

Jul 23, 2025, 9:50:14 PM | Engadget
What to expect at the Google Pixel 10 launch event on August 20

After largely focusing

Jul 23, 2025, 9:50:13 PM | Engadget
Microsoft backtracks on $80 The Outer Worlds 2 pricing

There's hope that the gaming industry won't follow Nintendo's lead with $80 pricing. (Well, at least not yet.) On Wednesday, Microsoft

Jul 23, 2025, 7:40:05 PM | Engadget
T-Mobile's Starlink satellite service is now available after months of testing

T-Mobile's satellite-to-mobile service is now officially

Jul 23, 2025, 5:20:31 PM | Engadget